Vista Vulnerable Via Vendors
Microsoft is a bit like the Boston Celtics -- they just can't win. Here Redmond
goes and builds a desktop operating system it believes is as secure as any (well,
maybe not DOS), only to have critics complain that
Vista
can be hacked by attacking third-party programs. For instance, ARCserve
Backup from CA is just one source of buffer overflow attacks, security experts
say.
The problem, according to our own Security
Watch newsletter author Russ Cooper, is that old versions of software don't
avail themselves of new Vista security features. I'm not sure if updating to
Vista, updating all your hardware and buying new versions of all third parties
is quite what IT is looking for.
Posted by Doug Barney on February 12, 2007